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Remarks 

Claims 1-9 were pending in the application. Claims 1-9 were 
acted upon in the aforesaid Office Action. Claims 1, 6, 7, and 8 
have now been amended, claims 2-5 and 9 have now been canceled, 
and new claims 10 and 11 have now been added, leaving claims 1, 
6-8, 10 and 11 under active consideration. 

In the outstanding Official Action, the Examiner: 

(1) rejected claims 1-2 and 4-6 under 35 USC 103(a) as being 
unpatentable over Bianco in view of Eberhard, and further in view 
of Tatebayashi et al . ; 

(2) rejected claim 3 under 35 USC 103(a) as being 
unpatentable over Bianco in view of Eberhard, and further in view 
of Tatebayashi et al . and Veneklase; and 

(3) rejected claims 7-9 under 35 USC 103(a) as being 
unpatentable over Bianco in view of Veneklase, and further in 
view of "that which is commonly known in the art". 

Turning first to independent claim 1, this claim is now 
directed to the novel authentication method which essentially 
comprises: (i) providing the identification box at the local site 
of the user, and providing the central server at the remote site; 
(ii) validating the identification box (by confirming the 
identity of the user to the central server, using the 
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identification box; sending a unique math table from the central 
server to the identification box, and storing the same at both 
the central server and the identification box; and measuring a 
first biometric parameter from the user with the identification 
box and storing that first biometric parameter in the encrypted 
form at the identification box and at the central server) ; and 
(iii) authenticating the user (by sending a user request for 
authentication from the identification box to the central server; 
sending a random number from the central server to the 
identification box; measuring a second biometric parameter from 
the user with the identification box and encrypting the same; 
comparing the second encrypted biometric parameter with the 
previously-stored first biometric parameter at the identification 
box; operating on the random number at the identification box 
with the unique math table to create a first cryptogram when a 
positive match occurs between the first and second biometric 
parameters; operating on the random number at the central server 
with the unique math table to create a second cryptogram; sending 
the first cryptogram to the central server and comparing the 
first cryptogram with the second cryptogram at the central server 
so as to determine the authenticity of the user) . 
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The foregoing method of claim 1 is neither disclosed nor 
rendered obvious by Bianco, Eberhard and/or Tatebayashi et al . , 
whether taken alone or in combination with one another. Bianco 
teaches a system which uses biometric measurements to 
authenticate a user, but Bianco does not teach Applicant's unique 
way of storing various biometric parameters on the various system 
elements at various times, nor does Bianco teach Applicant's 
unique approach for incorporating the use of a unique math table 
and a random number in the dialogue between the identification 
box and the central server. Fundamentally, Bianco does not teach 
Applicant's approach for validating the identification box and 
the data stored thereon, nor does Bianco teach Applicant's unique 
use of the math table and random number in the authentication 
exchange . 

Eberhard teaches a method for authentication between two 
electronic devices, but again, fails to teach Applicant's 
approach for validating the identification box and the data 
stored thereon, and does not teach Applicant's unique dialogue 
between the identification box and the central server. 

Tatebayashi et al . teaches an authentication system; 
however, Tatebayashi et al . fail to teach Applicant's validation 
of the identification box and the data stored thereon, and 
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Tatebayashi et al . fail to teach Applicant's unique 
authentication dialogue. 

In view of the foregoing, claim 1 (as amended) is believed 
to be in condition for allowance, and reconsideration thereof is 
respectfully requested. 

Claims 6 and 10 are dependent on independent claim 1 and 
incorporate all of the limitations thereof, and are therefore 
believed to be allowable for at least the reasons discussed above 
with respect to claim 1. 

Independent claim 7 is now directed to the novel 
authentication method which essentially comprises: (i) providing 
the identification box at the local site of the user, and 
providing the central server at the remote site; (ii) validating 
the identification box (by confirming the identity of the user to 
the central server, using the identification box; sending a 
unique math table from the central server to the identification 
box, and storing the same at both the central server and the 
identification box; and measuring a first biometric parameter 
from the user with the identification box and storing that first 
biometric parameter in the encrypted form at the identification 
box and at the central server); and (iii) authenticating the user 
(by sending a user request for authentication from the 
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identification box to the central server; sending a first random 
number from the central server to the identification box; 
measuring a second biometric parameter from the user with the 
identification box and encrypting the same; comparing the second 
encrypted biometric parameter with the previously-stored first 
biometric parameter at the identification box; generating a 
second random number when the first encrypted biometric parameter 
does not match the second encrypted biometric parameter; 
operating on the second random number at the identification box 
with the unique math table to create a first cryptogram when a 
positive match fails to occur between the first and second 
biometric parameters; operating on the first random number at the 
central server with the unique math table to create a second 
cryptogram; sending the first cryptogram from the identification 
box to the central server and comparing the first cryptogram with 
the second cryptogram at the central server so as to determine 
the authenticity of the user) . 

The foregoing method of claim 7 is neither disclosed nor 
rendered obvious by Bianco, Veneklase nor "that which is commonly 
known in the art", whether taken alone or in combination with one 
another. Bianco teaches a system which uses biometric 
measurements to authenticate a user, but Bianco does not teach 
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Applicant's unique way of storing various biometric parameters on 
the various system elements at various times, nor does Bianco 
teach Applicant's unique approach for incorporating the use of a 
unique math table and a random number in the dialogue between the 
identification box and the central server. Fundamentally, Bianco 
does not teach Applicant's approach for validating the 
identification box and the data stored thereon, nor does Bianco 
teach Applicant's unique use of the math table and random number 
in the authentication exchange. 

Veneklase and "that which is commonly known in the art" fail 
to remedy the aforementioned deficiencies of Bianco. 

In view of the foregoing, claim 7 (as amended) is believed 
to be in condition for allowance, and reconsideration thereof is 
respectfully requested. 

Claim 8 is dependent on independent claim 7 and incorporates 
all of the limitations thereof, and is therefore believed to be 
allowable for at least the reasons discussed above with respect 
to claim 7 . 

New independent claim 11 is directed to Applicant's new 
system and, inter alia, recites an identification box which is 
neither disclosed nor rendered obvious by any of the prior art of 
record. 
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In view of the foregoing, claim 11 is believed to be in 
condition for allowance, and allowance thereof is respectfully 
requested. 

In summary, claims 1, 6-8, 10 and 11 are believed to be in 
condition for allowance, and allowance thereof is respectfully 
requested. 

In the event that any additional fees may be required in 
this matter, please charge the same to Deposit Account 
No. 16-0221. 

Thank you . 

Respectfully submitted, 

Mark J. Pandiscio 
Registration No. 30,883 
Pandiscio & Pandiscio 
47 0 Totten Pond Road 
Waltham, MA 02451-1914 
Tel. No. (781) 290-0060 
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